Andrew, Giving a bump to B. Kimo Lee's suggestion of contracting for a PCI compliance scan. One note to stay away from a provider HackerGuardian (aka Comodo) as we've seen customers get way over-charged with sketchy/variable bait-n-switch pricing. Our best and most reliable experiences have been with Security Metrics ( http://securitymetrics.com ). A PCI compliance scan will both review server-level compliance testing and also known/common exploits for web applications. One thing to keep in mind may be server resources as some scanners will generate so much traffic that your hosting provider may throttle you depending on your Terms of Service and type of service. Charles Uchu Strader charles at gaiahost.coop 1-800-672-8060 x803 ----------------------------------------------------- GAIA Host Collective, LLC http://www.gaiahost.coop "Reliable Internet hosting services from a worker-owned cooperative dedicated to environmental and social sustainability." ----------------------------------------------------- On 7/4/11 5:27 PM, andrew at stakeholderscapital.com wrote: > ** Be sure to fill out the survey/skills inventory in the member's area. > ** If you did, we all thank you. > > > We would like to get estimates from firms who try to hack through security. > > If you do this, please contact me. > > Thanks, > Andrew > Sent from my BlackBerry® smartphone, powered by CREDO Mobile. > _______________________________________________ > Hidden-discuss mailing list - home page: http://www.hidden-tech.net > Hidden-discuss at lists.hidden-tech.net > > You are receiving this because you are on the Hidden-Tech Discussion list. > If you would like to change your list preferences, Go to the Members > page on the Hidden Tech Web site. > http://www.hidden-tech.net/members >